Nikto scan (max 60 sec) (nikto -host mycamu.in -maxtime 60)
- Nikto v2.5.0
---------------------------------------------------------------------------
+ Target IP: 69.16.231.82
+ Target Hostname: mycamu.in
+ Target Port: 80
+ Start Time: 2024-04-27 04:49:58 (GMT-4)
---------------------------------------------------------------------------
+ Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
+ /: Retrieved x-powered-by header: PHP/5.4.16.
+ Root page / redirects to: http://ww7.mycamu.in/?usid=22&utid=2764252223
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ /robots.txt: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/
+ OpenSSL/1.0.2k-fips appears to be outdated (current is at least 3.2.0). OpenSSL 1.1.1w is current for 1.x and is supported via contract, and 3.0.12 for 3.0.x, and 3.1.4 for 3.1.x.
+ Apache/2.4.6 appears to be outdated (current is at least 2.4.58). Apache 2.2.34 is the EOL for the 2.x branch.
+ mod_fcgid/2.3.9 appears to be outdated (current is at least 2.3.10-dev).
+ /: HTTP TRACE method is active which suggests the host is vulnerable to XST. See: https://owasp.org/www-community/attacks/Cross_Site_Tracing
+ /CVS/Entries: CVS Entries file may contain directory listing information.
+ Scan terminated: 0 error(s) and 7 item(s) reported on remote host
+ End Time: 2024-04-27 04:50:59 (GMT-4) (61 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested